Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/g1yh4TKOqct5tr8Gr22GBjH3-i4.roa
File: g1yh4TKOqct5tr8Gr22GBjH3-i4.roa (raw, json)
Hash identifier: vlYjjbNYrOooju99327qV5lgo281J5suEIMY9KulGxI=
Subject key identifier: 83:5C:A1:E1:32:8E:A9:CB:79:B6:BF:06:AF:6D:86:06:31:F7:FA:2E
Certificate issuer: /CN=07447a5109aa95f5b55803a552ce9ec9bb7aede1
Certificate serial: 01857115282B2C6480F2D6FC53A3D88D9146
Authority key identifier: 07:44:7A:51:09:AA:95:F5:B5:58:03:A5:52:CE:9E:C9:BB:7A:ED:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0R6UQmqlfW1WAOlUs6eybt67eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/g1yh4TKOqct5tr8Gr22GBjH3-i4.roa
Signing time: Mon 02 Jan 2023 06:04:50 +0000
ROA not before: Mon 02 Jan 2023 06:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211939
IP address blocks: 2001:678:ab0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:28:2b:2c:64:80:f2:d6:fc:53:a3:d8:8d:91:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07447a5109aa95f5b55803a552ce9ec9bb7aede1
Validity
Not Before: Jan 2 06:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=835ca1e1328ea9cb79b6bf06af6d860631f7fa2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ab:b8:b1:fa:94:33:e2:b0:3a:6a:f7:6b:70:
44:39:66:65:3f:5d:98:12:6b:11:4b:02:19:18:50:
73:ad:e8:bc:5c:69:40:16:84:85:e1:be:02:cf:94:
15:65:68:13:04:01:dc:92:4a:f4:86:86:66:f3:2e:
70:f6:83:63:d5:44:4b:08:a5:f9:a8:d7:ec:b6:1f:
a0:6b:c6:c9:42:7f:f2:5c:8b:26:27:c3:c1:a8:5c:
12:7f:0f:a6:d7:8d:2a:5d:2f:9c:50:a9:8a:be:98:
b0:08:06:72:c2:4e:e5:41:7e:f9:dc:de:a0:d9:7d:
f9:a7:da:bb:94:79:96:fa:78:c2:8c:cc:94:c8:07:
c1:d5:af:6b:23:6e:ee:ee:a7:02:e4:d4:90:2a:11:
75:25:eb:3f:93:e3:fd:d3:70:3a:00:23:4c:7a:79:
b1:9c:5e:bb:a8:af:32:f3:bc:06:80:29:9e:a9:57:
3f:c3:49:ac:7f:8f:68:99:aa:39:b1:da:8b:5b:55:
48:04:eb:79:13:4d:4f:f7:8e:e2:fe:df:7a:12:e5:
9d:99:0e:55:aa:55:f4:f6:1c:59:be:23:ad:f7:7c:
24:38:fb:89:e8:78:94:ba:27:f4:95:15:9a:72:cc:
4e:ad:7a:ce:27:15:94:33:dd:f1:0b:43:4a:9f:c7:
67:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5C:A1:E1:32:8E:A9:CB:79:B6:BF:06:AF:6D:86:06:31:F7:FA:2E
X509v3 Authority Key Identifier:
keyid:07:44:7A:51:09:AA:95:F5:B5:58:03:A5:52:CE:9E:C9:BB:7A:ED:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0R6UQmqlfW1WAOlUs6eybt67eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/g1yh4TKOqct5tr8Gr22GBjH3-i4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/B0R6UQmqlfW1WAOlUs6eybt67eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ab0::/48
Signature Algorithm: sha256WithRSAEncryption
99:73:99:f7:c7:4b:6b:58:e3:68:b5:84:2b:f9:df:4a:b4:04:
4b:04:b9:86:d7:f4:98:fe:97:9a:f0:57:0d:23:88:f2:64:c7:
7d:53:28:6a:69:bf:f9:d8:7a:e5:09:6a:9c:00:c7:66:5e:e8:
f8:bd:97:5f:55:69:c6:45:d9:e4:bb:3d:bf:84:a1:66:45:71:
78:8e:b1:b7:01:7d:c3:eb:34:02:25:0f:2a:ab:9e:eb:02:d0:
59:55:d0:dd:ce:97:05:a0:8f:c2:8b:37:d9:10:3f:77:3e:de:
99:6f:e0:1f:9f:12:9a:62:5c:c1:55:09:1c:e3:c7:15:73:03:
88:e7:e2:94:90:2d:45:a2:0d:fc:9d:8e:8a:70:2a:fe:fc:92:
af:56:da:a8:32:3a:ca:e3:5d:bf:71:5a:da:30:1a:88:e5:2f:
ed:8c:44:b2:d2:0c:c1:80:79:97:5b:d8:9b:7c:be:27:c4:b5:
67:d8:3a:61:bc:25:f3:50:5b:82:16:6a:c4:58:5c:13:09:03:
24:04:24:2a:a1:1b:6e:67:5d:5d:d9:54:ba:a3:0f:72:0f:5a:
0b:e6:ee:a1:47:e4:2a:f0:da:1e:57:65:9a:e4:f0:a8:2a:c1:
cb:e2:f9:4a:6e:df:ea:ee:8d:c2:fc:40:41:a3:3e:14:2a:ff:
17:12:af:10
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxFSgrLGSA8tb8U6PYjZFGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3NDQ3YTUxMDlhYTk1ZjViNTU4MDNhNTUyY2U5ZWM5YmI3
YWVkZTEwHhcNMjMwMTAyMDYwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzVjYTFlMTMyOGVhOWNiNzliNmJmMDZhZjZkODYwNjMxZjdmYTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKu4sfqUM+KwOmr3a3BEOWZlP12Y
EmsRSwIZGFBzrei8XGlAFoSF4b4Cz5QVZWgTBAHckkr0hoZm8y5w9oNj1URLCKX5
qNfsth+ga8bJQn/yXIsmJ8PBqFwSfw+m140qXS+cUKmKvpiwCAZywk7lQX753N6g
2X35p9q7lHmW+njCjMyUyAfB1a9rI27u7qcC5NSQKhF1Jes/k+P903A6ACNMenmx
nF67qK8y87wGgCmeqVc/w0msf49omao5sdqLW1VIBOt5E01P947i/t96EuWdmQ5V
qlX09hxZviOt93wkOPuJ6HiUuif0lRWacsxOrXrOJxWUM93xC0NKn8dnCwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFINcoeEyjqnLeba/Bq9thgYx9/ouMB8GA1UdIwQY
MBaAFAdEelEJqpX1tVgDpVLOnsm7eu3hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjBSNlVRbXFsZlcxV0FPbFVzNmV5YnQ2N2VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lZTFkNzYtNTliYi00MGI5LWJjMzEt
YjA2ZTIwOTk3ODg5LzEvZzF5aDRUS09xY3Q1dHI4R3IyMkdCakgzLWk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9lZTFkNzYtNTliYi00MGI5LWJjMzEtYjA2ZTIwOTk3ODg5
LzEvQjBSNlVRbXFsZlcxV0FPbFVzNmV5YnQ2N2VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAqw
MA0GCSqGSIb3DQEBCwUAA4IBAQCZc5n3x0trWONotYQr+d9KtARLBLmG1/SY/pea
8FcNI4jyZMd9Uyhqab/52HrlCWqcAMdmXuj4vZdfVWnGRdnkuz2/hKFmRXF4jrG3
AX3D6zQCJQ8qq57rAtBZVdDdzpcFoI/CizfZED93Pt6Zb+AfnxKaYlzBVQkc48cV
cwOI5+KUkC1Fog38nY6KcCr+/JKvVtqoMjrK412/cVraMBqI5S/tjESy0gzBgHmX
W9ibfL4nxLVn2DphvCXzUFuCFmrEWFwTCQMkBCQqoRtuZ11d2VS6ow9yD1oL5u6h
R+Qq8NoeV2Wa5PCoKsHL4vlKbt/q7o3C/EBBoz4UKv8XEq8Q
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:03 2024 by rpki-client on console-ams.rpki-client.org